Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
AUDIT OBJECTIVES
1. To review the general operations of the business office for compliance with BTCL's policies,
procedures, regulatory requirements and industry best practices.
2. To review the application of the whole systems of controls for adequacy and effectiveness in
the BTCL/business offices.
3. To verify the accuracy, completeness and validity of information/ records to management.
4. To ascertain that the controls (Operations, financial reporting and administration) are
adequate and effective.
5. To evaluate the performance of the company vis-à-vis- the set budget.
6. To note any inadequacies and make relevant recommendations.
III. Check whether all the new clients money has been banked to their
Account
500586043.doc Page 1 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
request
iv. Compare managers stub(cheque) with register for seriality of issuance
v. Confirm that all cancelled cheque were mutilated and accounted for.
[D] Treasury Operations- Weight [1.00%] 1.00%
I. Check that day cash position are matching with the money mouse
II. Check for physical security of the business environment and that of the
safe
III. Check for dual control of the safe to ensure no compromise of the keys
or combination
IV. Agree cash balance with the cashier ( proof Cash Balances)
V. Ensure cash book and system are properly balanced on a daily basis.
500586043.doc Page 2 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
Return Due by
BS100 - Statement of Assets and Liabilities 15th (monthly)
BS100A - Quarterly Computation of Capital Adequacy 15th (quarterly
BS120 - Quarterly Schedule of Bad and Doubtful Debts Provisions 15th (quarterly
BS130 - Quarterly Return on Large Exposures and Credit 15th (quarterly
Concentrations
BS140 - Quarterly Return on Advances Extended to staff 15th (quarterly
II. Check to ensure that approved Audit Programs for Business Offices is
in place.
III. Review budgeted reviews against actual noting any gaps
IV. Check to ensure that approved Compliance Proof Charts is in place.
V. Review the Processes and procedures and Proof Charts for adequacy
and completeness.
VI. Ensure they are regularly reviewed and updated.
5. RISK MANAGEMENT: (6.00%) 6.00%
Confirm the existence of Risk management framework in the office
500586043.doc Page 3 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
500586043.doc Page 4 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
II. Obtain and review their files for appropriate approvals and
completeness of documentation e.g. Confirmation of Credentials,
Medical Certificate report, Pre-employment test and reports etc
III. Check the existence of staff handbook.
IV. Confirm that candidates have the minimum educational requirements
V. Look out for evidence of staff de-motivation
VI. Review of all contract with employee for approval
500586043.doc Page 5 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
PROCUREMENTS
I. Obtain list of items procured by the BTCL for the period January 1,
2015 to July 31, 2017.
II. Check the documentation to ensure that there is an LPO awarding the
contract, and that relevant invoices, goods received note, etc are
attached.
III. Check that the LPO’s has approval in line with the BTCL’s policies.
IV. Obtain BTCL’s market survey file to ensure that items purchased were
at the appropriate price.
V. Obtain the list of approved vendors and check that contracts are
awarded to only approved vendors.
VI. Review the BTCL’s WIP account for items paid for but are yet to be
500586043.doc Page 6 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
delivered.
LOGISTICS/PROTOCOL
I. Obtain the organogram and job description of the protocol offices.
II. Check that there is a desk manual for activities in the unit.
III. Review the activities of the unit vis-à-vis activities in other units and see
where there could be synergy for maximum benefit.
VENDORS’/CONTRACTORS LIST
I. Obtain the list of approved vendors
II. Obtain management approval for each of the vendors.
III. Obtain the vendors/contractors rating of job performance (if any)
IV. Obtain list of blacklisted contractors
V. Obtain report if any on what competitors pay on similar services.
16 IT RESOURCES REVIEW-WEIGHT (10%) 10.0%
IT Support to review the following:
I. Review the Architecture process - A brief write up on the software,
hardware and communication network.
II. Check for IT architecture approval
III. Review Contracting and outsourcing processes for compliance
IV. Review the adequacy of Information security System in place
V. Check Internet Management for security and Compliance
VI. Review staff profiles/files for adequacy and competence
VII. Check for installation of Anti-virus; Vulnerability & Threat
Management
VIII. Review Computer Operations in general
IX. Review for security and adequacy of Networks
X. Carry out a review of Security Management/Independent Review
XI. Review company’s Problem Management approach for adequacy
XII. Review Company’s Change Management approach
XIII. Review Premises and Loan for adequacy of security
XIV. Confirm the existence and adequacy Application Support Unit
XV. Confirm that Business Continuity Plan is in place
XVI. Review licenses for alls software application in the company
XVII. Review Service level agreement with vendors and verify compliance.
XVIII. Review of software access control for adequacy
XIX. Confirm that there is an insurance cover in place for IT equipments
XX. Check for possible income leakage
2. i. Obtain the register of loans & advances maintained in the office (if
any) and compare with the downloaded reports to confirm the
completeness of the total population of files for review.
500586043.doc Page 7 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
ii. Obtain the customer loan files for review and confirm that
the total number of files given is complete.
3. Obtain the signatures of credit approving officers for the branch, and
for the Credit Risk Management division, to facilitate re-verification of
approval signatures on loan documents.
4. Review the files for documentation and due approval process,
including obligor limits, turnover, disbursement authorization,
securities, indemnities etc. to confirm compliance with policy and note
if there are abuses or irregularities. The following steps should guide
the review process:
4. 3 Securities Documentation:
a). General
(i) Ascertain that the securities obtained for the Loan are in line
with the credit policy requirement.
(ii) Ascertain if collaterals were perfected or in a perfectible state
500586043.doc Page 8 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
before disbursement.
(iii) Ascertain if the collateral is adequate to cover the facility
exposure.
(iv) Ascertain if documentation deferrals were duly approved.
(v) Check the existence of a Security Register and Security files.
(vi) Confirm if Securities files are kept in fireproof safes in the
strong room.
500586043.doc Page 9 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
4.9 Identify any facility with nil turnover for a period of between 1 to 3
months.
4.10 Prudential Classification
500586043.doc Page 10 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
500586043.doc Page 11 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
Loan.
(i) Obtain and confirm recoveries within the period, and compare:
(a) with the total lost accounts in the office.
(b) with the budget for the year.
(c) with the previous year’s recoveries.
500586043.doc Page 12 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
b) Review the system set-up, and thus confirm if the facility was properly
set up in the system in line with the approved terms, such as rates, limits,
tenor, maturity date, turnover covenants etc. Note any discrepancies.
500586043.doc Page 13 of 14
BTCL INTERNAL AUDIT SUBSIDIARY AUDIT
(v) Facility accounts with unexpired limits, but not in debit balance
as at the time of the review.
(vi) Several incidences of returned cheques on a facility account.
(vii) Customers whose Loan have been rolled-over for three
consecutive times and more.
(viii) Liquidation of loans by way of transfers from other customers’
accounts.
(ix) Cash-backed credit Loan, where the backing deposit or
investment account does not belong to the facility customer.
(The third party lien should be reconfirmed from the owner of
the deposit /investment).
(x) Where the account opening date is less than six months or the
period allowed under the credit policy.
(xi) Where the customer’s account was dormant but was newly re-
activated (e.g. facility between 0 – 60 days after re-activation).
(xii) System amendments / maintenance on facility accounts.
OTHERS:
Confirm the existence of risk management framework
Look out for major control issues not aware of by management
TOTAL 100.00%
Approved By ……………………………
Managing Director
500586043.doc Page 14 of 14